20240226 release notes #4133
Merged
20240226 release notes #4133
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
allyford
reviewed
Feb 28, 2024
allyford
reviewed
Feb 28, 2024
allyford
reviewed
Feb 28, 2024
allyford
reviewed
Feb 28, 2024
CHANGELOG.md
Outdated
|
|
||
| * Preview features | ||
| * Istio revision asm-1-20 is now available with Istio-based service mesh add-on. More information on performing canary upgrade for the new minor revision of Istio can be found [here](https://learn.microsoft.com/azure/aks/istio-upgrade). Istio revision asm-1-18 is no longer supported. | ||
| * PodIPAllocationMode property introduced on node pools for static block allocation in the case of Azure CNI. |
There was a problem hiding this comment.
Docs? and is this a preview feature?
There was a problem hiding this comment.
yes under preview. waiting for docs link from Chase
wangyira
reviewed
Feb 28, 2024
CHANGELOG.md
Outdated
| * PodIPAllocationMode property introduced on node pools for static block allocation in the case of Azure CNI. | ||
|
|
||
| * Behavioral change | ||
| * `ignoreUnfixed` is not set to `false` in [scanner options](https://eraser-dev.github.io/eraser/docs/customization#scanner-options) for [Image Cleaner](https://learn.microsoft.com/azure/aks/image-cleaner) so that images with vulnerabilities are deleted even if there is no fix/patch available for it yet. |
There was a problem hiding this comment.
good catch. now :)
There was a problem hiding this comment.
@wangyira - not a bug IMO, just changing default towards best practices IMO
palma21
reviewed
Feb 28, 2024
CHANGELOG.md
Outdated
| ### Announcements | ||
| * Starting in March, due to Gatekeeper Upstream removing validation for constraint template contents at create/update time, [the Azure Policy addon](https://learn.microsoft.com/azure/governance/policy/concepts/policy-for-kubernetes#install-azure-policy-add-on-for-aks) will now no longer support the validation for constraint template. The Azure Policy Add-On will report [‘InvalidConstraint/Template’ compliance reason code](https://learn.microsoft.com/azure/governance/policy/how-to/determine-non-compliance#aks-resource-provider-mode-compliance-reasons) for detected errors after constraint template admission. This change does not impact [other compliance reason codes](https://learn.microsoft.com/azure/governance/policy/how-to/determine-non-compliance#aks-resource-provider-mode-compliance-reasons). Customers are encouraged to continue to follow best practices when updating Azure Policy for Kubernetes definitions (i.e. [Gator CLI](https://open-policy-agent.github.io/gatekeeper/website/docs/gator/)). | ||
| * Starting with Kubernetes 1.29, the default cgroups implementation on Azure Linux AKS nodes will be cgroupsv2. Older versions of Java, .NET and NodeJS do not support memory querying v2 memory constraints and this will lead to out of memory (OOM) issues for workloads. Please test your applications for cgroupsv2 compliance, and read the [FAQ](https://learn.microsoft.com/troubleshoot/azure/azure-kubernetes/aks-increased-memory-usage-cgroup-v2) for cgroupsv2. | ||
| * Beginning with AKS support of Kubernetes 1.29 in preview, optimized reservation logic reduces Kube-reserved memory by up to 20% depending on the node configuration and will apply to all clusters. More information can be found [here](https://learn.microsoft.com/azure/aks/concepts-clusters-workloads#memory) |
There was a problem hiding this comment.
1.29 is out, ensure these are in the version changes table in the docs and can remove
@kaarthis cc
palma21
reviewed
Feb 28, 2024
CHANGELOG.md
Outdated
| ### Release notes | ||
|
|
||
| * Preview features | ||
| * Istio revision asm-1-20 is now available with Istio-based service mesh add-on. More information on performing canary upgrade for the new minor revision of Istio can be found [here](https://learn.microsoft.com/azure/aks/istio-upgrade). Istio revision asm-1-18 is no longer supported. |
palma21
reviewed
Feb 28, 2024
CHANGELOG.md
Outdated
|
|
||
| * Behavioral change | ||
| * `ignoreUnfixed` is not set to `false` in [scanner options](https://eraser-dev.github.io/eraser/docs/customization#scanner-options) for [Image Cleaner](https://learn.microsoft.com/azure/aks/image-cleaner) so that images with vulnerabilities are deleted even if there is no fix/patch available for it yet. | ||
| * Label `kubernetes.azure.com/managedby: aks` has been introduced to all managed addon components on cluster. |
There was a problem hiding this comment.
Link and close respective issue in the roadmap
palma21
reviewed
Feb 29, 2024
palma21
approved these changes
Mar 1, 2024
kaarthis
requested changes
Mar 1, 2024
kaarthis
approved these changes
Mar 1, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.